CARD 
[ERMINAL 




CARD 
FERMINAL 






CARD 
■ERMINAL 


\ 

\ 


\ 

\ 


\ 

\ 

> 

\ 

\ 


X 

\Ji 

1 


J 


/ 

/ 

f' 



\ I 




CD 



1/21 




2/21 




3/21 



2x CARD TERMINAL 




FIG. 4 



4/21 




5/21 



( START ) — SPO 

' SPl 



I 



START EXTRACTING USER'S 
BLOOD VESSEL FORMATION PATTERN 



RELAY MUTUAL AUTHENTICATION 
BETWEEN CARD TERMINAL AND 
CARD TERMINAL MANAGEMENT SERVER 



-SP2 



^SP3 

MUTUAL _ 
AUTHENTICATION IS COMPLETE^ 
SUCCESSFULLY 
? 

Iyes 



EXCHANGE ENCRYPTION KEYS 
MUTUALLY BETWEEN CARD TERMINAL AND 
CARD TERMINAL MANAGEMENT SERVER 



DECRYPT REGISTERED BLOOD VESSEL 
FORMATION PATTERN TRANSMITTED 
IN ENCRYPTED FORM FROM 
THE CARD TERMINAL 



COMPARE BLOOD VESSEL FORMATION 
PATTERNS OBTAINED FROM 
USER AND CARD TERMINAL 



-SP5 



-SP6 



DETERMINE PRESENCE OR 
ABSENCE OF REGISTRANT 



-spy 



( END > -SP8 



FIG. 6 



6/21 




7/21 




FIG. 8 



8/21 




9/21 




10/21 




11/21 




12/21 



RJ2 ^ START SP1 0 



^SPII 



MUTUALLY AUTHENTICATE WITH THE RING TERMINAL 




^SP13 



ENCRYPT SEED DATA AND Dl FUSION DATA AND 
TRANSMIT BOTH DATA TO RING TERMINAL 



I 



EXTRACT USER' S BLOOD VESSEL FORMATION PATTERN | 



_^SP14 



^SP15 



COMPARE FLICKER PATTERN OF NEAR INFRARED LIGHT 
SOURCE WITH LUMINANCE PATTERN OF PICKED UP IMAGE 




SPECIFY REGISTERED BLOOD VESSEL FORMATION 
PATTERN DATA LINKED TO TERMINAL ID OF RING TERMINAL 
FROM DATABASE AND READ DATA FROM HARD DISK 



^SP17 



COMPARE REGISTERED BLOOD VESSEL FORMATION 
PATTERN DATA WITH BLOOD VESSEL FORMATION 
PATTERN DATA EXTRACTED FROM USER 



SP18 



I DETERMINE PRESENCE OR ABSENCE OF REGISTRANT 



( END > ^SP20 
FIG. 13 



13/21 




14/21 



RT3 ^ START > -SP20 



START EXTRACTING USER' S BLOOD 
VESSEL FORMATION PATTERN 



RELAY MUTUAL AUTHENT I CAT I ON 
BETWEEN TERMINAL DEVICE AND 
TERMINAL MANAGEMENT SERVER 



-SP21 



-SP22 




EXCHANGE BICRYPTiON KEYS 
MUTUALLY WITH TERMINAL DEVICE 



DECRYPT REGISTERED BLOOD 
VESSEL FORMATION PATTERN 
TRANSMITTED IN ENCRYPTED 
FORM FROM TERMINAL DEVICE 



OBTAIN REGISTERED BLOOD 
VESSEL FORMATION PATTERN 
REGISTERED IN TERMINAL 
MANAGEMENT SERVER LIKE 
■ IN SP24 AND SP25 



COMPARE THREE BLOOD VESSEL 
FORMATION PATTERNS OBTAINED 
FROM USER, TERMINAL DEVICE, 
AND TERllllNAL MANAGEMENT 
SERVER WITH ONE ANOTHER 



DETERMINE PRESENCE OR 
ABSENCE OF REGISTRANT 



-'SP24 



-'SP25 



-SP26 



-'SP27 



-SP28 



C END > -SP29 

FIG. 15 
15/21 




16/21 



RT4 ^ START ) -SP20 



START EXTRACTING USER'S 
BLOOD VESSEL FORMATION PATTERN 



-SP21 



RELAY MUTUAL AUTHENTICATION 
BETWEEN TERMINAL DEVICE AND 
TERMINAL MANAGEMENT SERVER 



-SP22 




DECRYPT REGISTERED BLOOD 
VESSEL FORMATION PATTERN 
TRANSMITTED IN ENCRYPTED 
FORM FROM TERMINAL DEVICE 



OBTAIN REGISTERED BLOOD 
VESSEL FORMATION PATTERN AND 
HASH VALUE BOTH REGISTERED 

IN TERMINAL MANAGEMENT 
SERVER LIKE IN SP24 AND SP25 



-^SP25 



-'SP26' 





CD 



18/21 



«^^— { START ) ~SP30 



START EXTRACTING USER'S BLOOD 
VESSEL FORMATION PATTERN 



. AUTHENTK 



RELAY MUTUAL AUTHENTICATION 
BETIEEN TERMINAL DEVICE 
AND TERMINAL MANAGEMENT SERVER 



-SP31 



-SP32 




EXCHANGE ENCRYPTION KEYS 
MUTUALLY WITH TERMINAL DEVICE 



DECRYPT ENCRYPTED REGISTERED 
BLOOD VESSEL FORMATION PATTERN 
TRANSMITTED IN DOUBLE ENCRYPTED 
FORM FROM TERMINAL DEVICE 



OBTAIN SECRET KEY AND HASH VALUE 
BOTH REGISTERED IN TERMINAL 
MANAGEMENT SERVER LIKE 
IN SP24 AND SP25 



DECRYPT ENCRYPTED REGISTERED 
BLOOD VESSEL FORMATION PATTERN 

DATA BY USE OF SECRET KEY, 
AND GENERATE COMPARATIVE HASH 
VALUE FROM DECRYPTION RESULT 



COMPARE HASH VALUE OBTAINED 
FROM TERMINAL MANAGEMENT SERVER 

WITH COMPARATIVE HASH VALUE 
BASED ON BLOOD VESSEL FORMAT (ON 
PATTERN DATA IF NECESSARY 



DETERMINE PRESENCE OR 
ABSENCE OF REGISTRANT 



-SP34 



-SP35 



-SP36 



^SP37 



--SP38 



-SP39 



( END ~^ — SP40 
FIG. 19 
19/21 



(A) NO COMMUNICATION ERRORS 



DATA TRANSMISSION 
PROCESSING 



^D13 i ^D13 2 ^D13 3 



BIOLOGICAL AUTHENTICATION 
PROCESSING 



(B) COMMUNICATION ERROR D132 



DATA TRANSMISSION 
PROCESSING 



^D13 i ^D13 2 ^D13 3 ^D13 2 



BIOLOGICAL AUTHENTICATION 
PROCESSING 



FIG. 20 



20/21 



EXPLANATION OF REFERENCED NUMERALS 



1,51,101,201 INFORMATION PROCESSING SYSTEM. 21(1=1. 2, --,N), 2x CARD 

TERMINAL. 52l(i=1,2, .N). 52x RING TERMINAL, 102x. 202x TERMINAL 

DEVICE. 3.53.103,203 AUTHENTICATION DEVICE. 4 CARD TERMINAL MANAGEMENT 

SERVER. 104,204 TERMINAL MANAGEMENT SERVER, 21,61 TERMINAL CPU, 

31.71.131.231 AUTHENTICATION CPU, 22.32 INTERNAL MEMORY, 

23, 33 TRANSMISSION/RECEPTION SECTION, 24, 34 ENCRYPTION/DECRYPTION 

SECTION, 25 RANDOM NUMBER GENERATION SECTION, 35 NETWORK INTERFACE, 

36 DRIVE CONTROL SECTION, 37,75 PATTERN EXTRACTION SECTION. 

38.77 AUTHENTICATION SECTION. 73 HARD DISK, 74 LUMINANCE PATTERN 

GENERATION SECTION. 76 FLICKER PATTERN COMPARISON SECTION, CM IMAGING 

CAMERA, LS NEAR INFRARED LIGHT SOURCE, ATCD TERMINAL ANTENNA, 

ATcr AUTHENTICATION ANTENNA, ICCD1, ICCD2 TERMINAL SIGNAL PROCESSING 

SECTION, ICcr1,ICcr2 AUTHENTICATION SIGNAL PROCESSING SECTION, 

RT1 FIRST AUTHENTICATION PROCESSING PROCEDURE, RT2 SECOND 

AUTHENTICATION PROCESSING PROCEDURE, RT3 THIRD AUTHENTICATION PROCESSING 

PROCEDURE, RT4 FOURTH AUTHENTICATION PROCESSING PROCEDURE, RT5 FIFTH 

AUTHENTICATION PROCESSING PROCEDURE 



21/21 



